STIGQter: STIG Summary: Riverbed SteelHead CX v8 ALG Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 30 Nov 2015:

The Riverbed Optimization System (RiOS) must not have unrelated or unnecessary services enabled on the host.

DISA Rule

SV-77315r1_rule

Vulnerability Number

V-62825

Group Title

SRG-NET-000131-ALG-000085

Rule Version

RICX-AG-000086

Severity

CAT II

CCI(s)

• CCI-000381 - The organization configures the information system to provide only essential capabilities.

Weight

10

Fix Recommendation

Disable or uninstall unrelated or unnecessary services from the host.

Check Contents

If RiOS is installed on the SteelHead appliance, this is a finding.

Inspect the services and applications that are installed on the host with the RiOS application suite.
Ask the site representative if a security review using the applicable STIG has been performed on the operating system and applications that are co-hosted.

If unrelated or unnecessary services are installed on the same host as the RiOS, this is a finding.

If a security review using the applicable STIG has not been performed on the operating system and applications co-hosted on with the RiOS, this is a finding.

Vulnerability Number

V-62825

Documentable

False

Rule Version

RICX-AG-000086

Severity Override Guidance

If RiOS is installed on the SteelHead appliance, this is a finding.

Inspect the services and applications that are installed on the host with the RiOS application suite.
Ask the site representative if a security review using the applicable STIG has been performed on the operating system and applications that are co-hosted.

If unrelated or unnecessary services are installed on the same host as the RiOS, this is a finding.

If a security review using the applicable STIG has not been performed on the operating system and applications co-hosted on with the RiOS, this is a finding.

Check Content Reference

M

Target Key

2929

Comments